Results 1 to 4 of 4

Thread: Remote Desktop in a Domain. Why doesn't putting a user in the domain group Remote allow remoting into a client?

  1. #1
    Join Date
    Aug 2006
    Posts
    93

    Remote Desktop in a Domain. Why doesn't putting a user in the domain group Remote allow remoting into a client?

    We are on a Windows 2003 domain and we are also using the XP workstations whose members are all domain members and all the other login credentials are same on the clients like the domain ones. The remote desktop is enabled on the client computer with no local remote users that are added other than the default admins. A user is created in Active Directory Users and Groups and also placed into the Remote Desktop Built-In Group on the Domain. If we try to log into a client computer remotely by using the new domain user's credentials and remote desktop then an error comes up saying that a Group Policy prevents login. What could be the issue here, can anybody guess?

  2. #2
    Join Date
    Aug 2006
    Posts
    201

    Re: Remote Desktop in a Domain. Why doesn't putting a user in the domain group Remote allow remoting into a client?

    Are you doing it on all the client computers. I think that it needs to be enabled only on the computers that you want to logon to remotely through an RDP session. You also should not add the local admin group to the local remote users group similar as a local administrators that have all the remote logon rights by default.

  3. #3
    Join Date
    Aug 2006
    Posts
    93

    Re: Remote Desktop in a Domain. Why doesn't putting a user in the domain group Remote allow remoting into a client?

    I have tried to do what you wanted but even after that the local computer can see groups from the Domain, like domain admins and domain users, etc. However it will not see the Remote Users Group in the Domain Built-ins folder. So because of that, I am not able to add this domain security group to the local remote group.

  4. #4
    Join Date
    Aug 2006
    Posts
    201

    Re: Remote Desktop in a Domain. Why doesn't putting a user in the domain group Remote allow remoting into a client?

    I have checked that the domain remote users group are there in the AD but we dont use that for anything. Also, the domain administrator can remote to any domain computer and anybody with the admin access to a server would be also able to do the same there. If it comes to a workstations enabled for RDP access, then you need to create your own "OU remote users group" ad there is no need for anyone outside the site based OU to get the remote access to workstations.

Similar Threads

  1. Setup Remote Desktop on Domain workstations
    By michaeln in forum Networking & Security
    Replies: 2
    Last Post: 27-06-2011, 04:30 PM
  2. Replies: 3
    Last Post: 24-05-2011, 03:11 AM
  3. adding another domain user as domain admins group
    By Billie in forum Active Directory
    Replies: 3
    Last Post: 19-07-2010, 06:57 PM
  4. Replies: 7
    Last Post: 23-09-2008, 11:23 PM
  5. Replies: 1
    Last Post: 19-06-2008, 01:58 AM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Page generated in 1,710,831,759.62752 seconds with 17 queries